Getting High Alert ("SQL injection may be possible"), whie we are not using sql in the application.

[jitendra-90]

Describe the bug

Getting too many High Alert related to SQL injection, while we not using sql injection in hte application, we are using api with encrypted parameters, still getting this type of alert from zap tool active scan report.

Steps to reproduce the behavior

1. Go to tree view section
2. right click on the site and go on the Attacks and click on Active Scan
3. select all the check boxes from the popup
4. start the Scan

Expected behavior

there should not be Sql-Injection and MongoDb related alert in the report, both are not used in the application

Software versions

2.14.0

Screenshots

Errors from the zap.log file

No response

Additional context

No response

Would you like to help fix this issue?

• Yes

[thc202]

You should use 2.15 and provide the versions of the add-ons.

[psiinon]

Pro tip - use the technolgy option to turn off the SQL rules: https://www.zaproxy.org/blog/2023-11-20-technology-support/

In any case, theres no enough info in this issue for us to do anything.
As per https://www.zaproxy.org/faq/how-do-i-handle-a-false-positive/ : "Please report any false positives that you identify supplying as much information as you can, while obfuscating any sensitive information. New issues should just cover one scan rule and should include enough information for us to reproduce the problem."

[jitendra-90]

When I am trying to install 2.15 version then detecting malware while creating files in plugin folder

[psiinon]

Thats likely to be a problem with your malware detection software, not ZAP.
If you think it might be a problem with ZAP then please let us know all of the details it gives you.

[jitendra-90]

I am attaching the detail of detected malware

[psiinon]

It could be related to #8488
In any case, this is likely to be a problem with your virus scanner, not a ZAP issue.

[kingthorin]

Any further details post upgrade?